Mozilla Firefox 3.5.x < 3.5.14 Multiple Vulnerabilities

Binary data 5681.prm...

Mozilla SeaMonkey 2.0.x < 2.0.9 Multiple Vulnerabilities

Binary data 801286.prm...

Mozilla Thunderbird 3.0.x < 3.0.9 Multiple Vulnerabilities

Binary data 5683.prm...

Mozilla Firefox 3.6.x < 3.6.11 Multiple Vulnerabilities

Binary data 5682.prm...

Mozilla Thunderbird 3.1.x < 3.1.5 Multiple Vulnerabilities

Binary data 5684.prm...

Mozilla unsafe library loading flaw

A certain application-launch script in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 on Linux places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan hor...

Holoo Insecure Library Loading Vulnerability

A vulnerability has been discovered in Holoo, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: • idapi32.dll • idr20009.dll • odbc32.dll This c...

Unsafe library loading vulnerabilities — Mozilla

Mozilla developer Ehsan Akhgari reported that a function used to load external libraries on Windows platforms was using a relative path to a DLL-loading application and was thus vulnerable to binary planting if an attacker was able to place an executable of the same name in the current working...

Phoenix Project Manager 2.1.0.8 - DLL Loading Arbitrary Code Execution

Phoenix Project Manager 2.1.0.8 - DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/44198/info Phoenix Project Manager is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use th...

Cool iPhone Ringtone Maker 2.2.3 - dwmapi.dll DLL Loading Arbitrary Code Execution

Cool iPhone Ringtone Maker 2.2.3 - dwmapi.dll DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/44205/info Cool iPhone Ringtone Maker is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate...

Sahar Money Manager Insecure Library Loading Vulnerability

A vulnerability has been discovered in Sahar Money Manager, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: unicows.dll This can be exploited ...

Rafe 7 Insecure Library Loading Vulnerability

A vulnerability has been discovered in Rafe 7, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: • idapi32.dll • idbat32.dll • idr20009.dll •...

PowerDVD 5.0.1107 - trigger.dll DLL Loading Arbitrary Code Execution

PowerDVD 5.0.1107 - trigger.dll DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/44193/info PowerDVD is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable...

Brilliant Accounting System &#40;59&#41; Insecure Library Loading Vulnerability

A vulnerability has been discovered in Brilliant Accounting System 59, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: • idapi32.dll •...

Xilisoft Video Converter Ultimate Insecure Library Loading Vulnerability

A vulnerability has been discovered in Xilisoft Video Converter Ultimate , which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list called is as follows: • quserex.dll •...

Accounting Pro 2003 Insecure Library Loading Vulnerability

A vulnerability has been discovered in Accounting Pro 2003, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading libraries in an insecure manner. Libraries list loaded is as follows: • idapi32.dll • idr20009.dll •...

Cool iPhone Ringtone Maker 2.2.3 - &#039;dwmapi.dll&#039; DLL Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/44205/info Cool iPhone Ringtone Maker is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share locatio...

Phoenix Project Manager 2.1.0.8 - DLL Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/44198/info Phoenix Project Manager is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location...

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2010-64 Miscellaneous memory safety hazards rv:1.9.2.11/ 1.9.1.14 MFSA 2010-65 Buffer overflow and memory corruption using document.write MFSA 2010-66 Use-after-free error in nsBarProp MFSA 2010-67 Dangling pointer vulnerability in LookupGetterOrSetter MFSA 2010-...

Lhasa may insecurely load executable files

Overview Lhasa may use unsafe methods for determining how to load executables .exe. Lhasa is a file extraction software that supports LZH and ZIP formats. Lhasa loads certain executables .exe when extracting files. Lhasa contains an issue with the file search path, which may insecurely load...